I am currently using ember desktop to run zigbee traces on some embeded devices. I have the network keys and device keys so all the data is fine, im just a bit of a noob when it comes to reading the data.
one of the traces i run returns a value for some data and comes back as int24_0: 0x000201 another is the same int24_0: 0x0000D1.
Does anyone know how to read this data of how i can see or even convert this int24 value to a readable value.
thanks
This depends on a lot of criteria: the status of your receptor, the Zigbee version (are you 3.0.0 or smaller ?) ..
Here you have a link which summary all Zigbee basics:
Basics Zigbee
I also attached the section dedicated to the frame reading (link in the first page):
Zigbee frame description
Related
Have a problem where I had to read the complete firmware (using an eeprom reader) from a hardware disabled (beyond repair) Nokia 105 (RM-908) in order to try and extract SMSes and the contacts. Using a hex editor I can see the all the data, however,I cannot manage to find out the complete information. For instance the date and receiver of the messages or the user associated with the contact numbers. The only idea I believe that can be done is to extract the personal user area PMM from the bin, get another set with the same version of this disabled device, build up an image, flash the resulting image using an appropriate flasher in the working device and read the content off this device. While I am unsure if this will work (theoretically might work), would like to try to avoid this procedure as it is very time consuming and maybe get to the target data directly via hex editing or any other application.
thanks for any help
I have built a simulation model of the IEEE 802.11s based mesh network in ns-3 version ns3.28. The network consists of one moving node moving randomly and three static nodes. The pcap file generated from the model when viewed in Wireshark shows malformed Action frames.
I have attached the picture below. The same is the case for beacon frames. Can anyone describe why are these packets malformed?
I don't know how to fix it in the code but I think I know whats going on. The header is supposed to be a IE_MESH_PEERING_MANAGEMENT (117) with sub-type PEER_CLOSE (3) and Tag length 7 (see here). The reason for close is set to REASON11S_MESH_CONFIRM_TIMEOUT (57).
Somehow it was serialized in the wrong order. You should open a bug with ns3 for them to fix this.
I need to write a program that will read the data from the indicator once a minute. Unfortunately, I can not find the communication protocol for this indicator (the official representative responds extremely unqualified and there is no way to get at least some information from him). Some programmer (with whom I do not have a connection) wrote a similar program earlier, but did not leave the source code. In the Device Manager on computer the indicator is defined as USB-ITN. I will be grateful for any information in solving this problem.
Indicator model: ID-U1025M
Indicator Serial Number: 13063340
USB cable: ITN - 60010409
You should ask the nearby Mitutoyo branch.
Mitutoyo Worldwide
The published information of the product you are using seems to be the following.
Japanese version document for ID-U1025
English version document for similar product
A description of the tool and data format will be as follows.
USB Input Tool Direct/Input Tool SERIES
U-WAVE
U-WAVE/Common Optional Software
I wonder if you wonderful people can point me in the right direction??
I'm quite new to web programming, I'm OK at conventional C/C++ etc but just really getting into the whole webside thang. Anyway, I was wondering how I may solve the following.
I want to have a sensor (doesn't matter what type it is, let's say a temperature sensor). This sensor will read it's environment reporting on (in this case) temperature. (Let's say the circuitry has been built and it's giving the data I need - via a desktop app)
My question is
List item I want to convert the sensor output to a 3D graph (any ideas guys),
I want to be able to show the graph on PC/smartphones (so think a web interface the best approach - unless someone/anyone has better ideas and most importantly links)
List item I want to show the temperature change/graph in 'real time' (absolutely crucial) through the web interface .
I think, the conversion of the data would have to be done server-side. I'm thinking (and I may be wrong so please do correct)
List item Client side - Get sensor data (via the desktop app)
List item Client side - Transmit data (via the desktop app - not sure how this would be done yet)
List item Server side - Convert data to graph
List item Server side - Transmit data/graph
List item Client side - Receive data
List item Client side - Show graph
If this were just a question of rendering a sensors data to a PC screen (self contained application) - I would feel confident to tackle it. However, I think where I'm getting stuck is the rendering/transmitting and displaying of the 3D images in real time using web technology, platforms and languages. If it helps, I am just picking up Php, MySql and python. I already know C/C++/VB and assembly.
I hope this makes sense, any starting points that you can give will be greatly appreciated
Jason :)
You could use MRTG http://en.wikipedia.org/wiki/Multi_Router_Traffic_Grapher
It provides real time and png graphics of sensor data.
It is very easy to configure and shows/records tipical 1 year of data in a RRD http://en.wikipedia.org/wiki/Round-Robin_Database
I would like to know how to capture packets of a specific wireless network using wireshark.
I'm already able to capture all packets of different networks setting my wireless card in monitor mode but for a specific analysis i need to discard all the packets not related to my network during the capture procedure.
I know that exists display filters to do that but i need to filter them ahead (like with capture filters).
If i go to CAPTURE->OPTIONS i can set capture filters but i don't know the exact filter because they are different from display filter infact wlan.bssid==xx:xx:xx:xx:xx:xx
does not work.
any suggestions?
thanks
You could use an index from the start of the wlan packet.
It needs some coaxing, but the BSSID field is in a fixed, predictable position. By using brackets, you should be able to reference the proper positions in the packet.
The BSSID is at position 16, so if you wanted to emulate something like:
wlan.bssid=12:34:56:78:9a:bc
you would have to do something like this:
wlan[16:4] == 0x12345678 and wlan[20:2] == 0x9abc
You have to convert the first 4 octets into a int32 and the last 2 into an int16 and use 2 clauses, as BPF cannot express a 6 byte number, but I've used it and it works fine. This can also be adapted to other uses as well (you just need the offset).
Excellent question and something I've been trying to figure out also.
The short answer is the wireshark tools cannot filter on BSSID. Wireshark uses pcap, which uses the kernel Linux Socker Filter (based on BPF) via the SO_ATTACH_FILTER ioctl. There is no BPF filter for BSSID.
Another tool, airodump-ng, CAN capture by BSSID because it passes all 802.11 frames into user space and decodes/filters frames there. It works surprisingly well considering all the user-space processing.
But even a low-volume 80211 network is fairly noisy. For example, my SOHO captures 11K frames in under two minutes; and I still drop frames. Grabbing all the 80211 frames for the five visible (but small!) BSSIDs near me and I receive 141K frames (104MB) in just under three minutes.
I'm looking to do an embedded frame sniffer/injector using EMMC or SD flash so I need to be careful about pushing the limits.
So I'm trying to write a custom BDF filter to filter only the local BSSID frames. And I hope to extend it to drop a good amount of the "noisy" frames - most of the control and management frames can be filtered.
The BSSID address location in the frame is based on ToDS and FromDS control bits.
Anyway, hope I provided some breadcrumbs to the solution. It may just be an airodump user-space solution is the easiest.